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(54) Abstract Title 

Communications system having an authentication function 

■ ♦ 

(57) In a communications system having an authentication function, a relaying apparatus 3 has an 
authentication circuit 6 for checking whether reader/writers 2-1 to 2-n are authentic or not by detecting 
whether or not the authentication signals from the reader/writers 2-1 to 2-n have been subjected to a 
predetermined calculation operation within the reader/writers 2-1 to 2-n, a multiplexer 5 for switching the lines 
connecting between the reader/writers 2-1 to 2-n and a PC 4 in accordance with the results of the 
authentication processes, and a calculation circuit 7 for performing a predetermined calculation operation on 
the authentication signals from the reader/writers 2-1 to 2-n and.for feeding them back to the reader/writers 2-1 
to 2-n. Each reader/writer checks whether the relaying apparatus is authentic. In use, a card 1 communicates 
with a reader/writer and each of them checks trie authenticity of the other. The relaying apparatus 3 may 
include a voltage level shifter. 

FIG.1 



PC 




R/W 



^2-1 



^2-2 
|CQMM UNICATK?N 



R/W 



\2-n 



IC CARD 



FIG. 2 



FROM R/W 2-1 ■ 
FROM R/W 2-2- 



FROM R/W 2-n 



CALCULATION 
CIRCUIT 



MUX 



I 



AUTHENTICATION 
CIRCUIT 



^6 



•T0PC4 



O 
CD 

s 



> 



FIG.1 




I COMMUNICATION 



IC CARD 



1 



FROM R/W 2-1 
FROM R/W 2-2 

FROM R/W 2-n 



• 



FIG. 2 



• • • 



CALCULATION 
CIRCUIT 



• • * 



MUX 



AUTHENTICATION 
CIRCUIT 



6 



TO PC4 



FIG. 3 



RELAYING 
APPARATUS 



23 



1 



CONTROL 
CIRCUIT 



i 



I 



AUTHENTICATION 



1 



CALCULATION 



24 



25 



1 



o 



Qlu 



21 



I 



i 




FIG. 4 



RELAYING APPARATUS 3 



READER/WRITER 2 



PRODUCE 

AUTHENTICATION SIGNAL 



STEP1 



STEP2 



AUTHENTICATION 
SIGNAL Rcl 

STEP3 



STEP4 




STEP5 





AUTHENTICATION 
SIGNAL Rc2 

STEP6 



STEP7 



Rc3=f1(Rc2) 



AUTHENTICATE 
SIGNAL KC3 



STEP8 



Rc2=f2(Rc1) 



STEP9 



* * »- f r • 



■< STEPIO 



■ - - 




STEP11 




AUTHENTICATION 
SIGNAL Rc4 

STEP12 



Rc4=f2(Rc3) 



RELAYING 
APPARATUS 3 

L STEP la 



F I G . 5 

READER/WRITER 2 



STEP2a 




IC CARD 1 



STEP3a 



STEP5a 



I STEP4a 



I STtEPSal Rc2a 



STEP7a I 3TEP52 |REC06NIZEICCARD| SfeMm 



STEP50 



IC CARD 1 ON 



STEPS 
RESPONSE 



Rc3a 



P ga_ 

TifEP_9a 
TO 



STEP2Q [CA[CULAT|6n f2()| 
Rc4a =f2(Rc3a) I 



STEP21 



PRODUCE COMMAND 
SI6NAI 




Rdb 



STEP5b 



COMMAND SIGNi 
(AUTHENTICATION 



STEP22 



1 STEP3b I 



SIGNAL Rc4a) 



STEP4b 



I STEP6b 1 
I STEP7b I 



Rc2b 



STEP8b 





STEP30 



Rc3b 

STEPIIb 
Rc4b 

STEP26 



AUTHENTICATION 
(CALCULATION f 3 ( )[ 



Rc5a=f3(Rc4a) 



STEP9t> 



IsfelalSiMa 




STEP27 



DETECT AUTHENTICATION 
S GNAL 4 CHECK F 

COMMt INIC AftniN PpSSifll F 



S TEP25 

RESPONSE SIGNAL R2 
(AUTHENTICATION SIGNAL Rc5a) 



LNlfcAftON \ 



STEP28 jCALCULATION f 2 ( )| 



NG 



STEP29 Rc6a=f2 ( Rc5a ) 

AUTHENTICATION 
. SIGNAL Rc6a OR! 

I 



LU 



CO 
CO 



FIG. 6 



IC CARD 



1 



V 



R/W 




RELAYING 




PC 




APPARATUS 





FROM R/W2 



FIG. 7 



CALCULATION / 
CIRCUIT w 



11 



LEVEL 
SHIFTER 



AUTHENTICATION 
CIRCUIT 



10 



\ 



3a 



8 



-TO PC4 




FIG. 8 PRIOR ART 



PC 



52 




51-1 



50-1 




51-2 



50-2 




51-n 



50-n 



2347537 

COMMUNICATIONS SYSTEM HAVING 
AN AUTHENTICATION FUNCTION 



The present invention relates to a communications system in which 
communications terminals for cornmunicating with external communications 
apparatuses are managed in a concentrated manner by a computer functioning as a 
central control apparatus, and particularly to a communications system in which 
an authentication process is performed between such communications terminals 
and transponders that communicate therewith. 

m 

i 

Conventionally, communications systems are in practical use that employ 
IC cards or magnetic cards as transponders to manage the lift facilities at a skiing 
ground, to sort pieces of baggage, to monitor people entering and leaving a room, 
and for other purposes. A communications system of this type consists basically 
of an interrogator portion and a Jtransponder portion with which the interrogator 
portion communicates. Here, t he in terrogator portion is composed of, on the one 
hand, communications terminals, each provided with a reader/writer for 
communicating directly with a transponder and provided with a personal computer 
(hereinafter referred to simply as a "PC") serving as a local control apparatus for 
analyzing the signal received frqmjhe transponder and producing a signal to be 



transmitted back to the transponder, and, on the other hand, another PC serving as 
a central control apparatus (i.e. a host computer) for managing in a centralized 
manner the above-mentioned PCs of the communications terminals as slave 
computers. 

5 In a conventional communications system as described above, the 

interrogator portion, composed of a plurality of communications terminals and a 
central control apparatus, has a system configuration as shown in Fig. 8, which is a 
block diagram thereof. Specifically, a plurality of reader/writers 50-1 to 50-n, each 
capable of communicating with a transponder and having an authentication means, 
10 are connected individually to PCs 51-1 to 51-n so as to be controlled thereby, and 
these PCs 51-1 to 51-n are, as slave computers, connected to another PC 52 serving 
as their host computer so as to construct together a LAN (local area network). 

How this communications system works will be described briefly below, 
taking as an example a case where it is applied to a system for monitoring people 
15 entering and leaving a room. When a person holding a magnetic card, on which 
personal information is recorded such as the time period in which the person is 
permitted in the room and the card ID (identification) number, inserts the 
magnetic card into one of the reader/writers 50-1 to 50-n, the person is requested to 
enter a secret number, and an authentication process is performed to determine 
20 whether to open a door or not to permit the person to enter or leave the room. 
Here, suppose that the magnetic card is inserted into the reader/writer 50-1. If, on 
the basis of the secret number entered by the person, the reader/writer 5.0-1 
authenticates the magnetic card, communication is established between them, and 



the personal information recorded on the magnetic card is read. 

This personal information is transmitted to the PC 51-1 that controls the 

» 

* 

reader/writer 50-1. and then the PC 51-1 determines whether to permit the person 
to enter or leave the room or not If the PC 51-1 determines to permit the person 
5 in or out of the room, it responds by transmitting back a command signal 
requesting the door connected to the reader/writer 50-1 to be opened. Thereafter, 
the reader/writer 50-1 controls the door so that it will be unlocked, and also 

: 

communicates with the magnetic card to record thereon the time at which the 
person entered or left the room. The information that this particular magnetic 

10 card holder entered or left the room is transmitted from the PC 51-1 to the PC 52 
serving as the host computer, which thereby keeps track of where the magnetic 
card holder currently is. Moreover, from this PC 52, it is possible to manage faults 
occurring in the PCs 51-1 to 51-n that serve as slave computers. 

In recent years, in a communications system of this type, IC cards have been 

15 taking the place of magnetic cards for their convenience. In such cases, to 
achieve higher security, both IC cards and reader/writers are provided individually 
with an authentication means that generates a rolling code to permit them to check, 
when communication is requested from a communication partner, whether the 
communication partner is authentic or not. 

50 In this way, this conventional communications system, in which a plurality 

of reader/writers 50-1 to 50-n areWimected individually to PCs 51-1 to 51-n so as 
to be controlled thereby and thos'ePCs 51-1 to 51-n are connected to another PC 52 
so as to construct together a LAN, requires PCs to be provided one for each of the 



communications terminals used therein, and thus inevitably has a complicated 
system configuration. Thus, a communications system of this type is expensive to 
introduce and maintain, and in addition troublesome to manage. 

This system can be simplified, for example, by providing a hub serving as a 
relaying apparatus between the reader/writers and the PC serving as the host 
computer so that the reader/writers will be connected through the hub directly to 
the host PC so as to construct together a LAN. However, in this case, there is no 
security function performed between the reader/writers and the host PC such as 
the rolling codes and secret numbers exchanged between the reader/writers and 
the transponders. As a result, once a reader/writer erroneously authenticates an 
inauthentic transponder, there is a risk of the host PC being readily accessed by 
that transponder, allowing the inauthentic transponder to pretend to be an 
authentic transponder. 

In a preferred embodiment of the present invention there is provided a 
communications system that has a simpler system configuration in its interrogator 
portion including a plurality of communications terminals and that nevertheless offers 
higher security in communication. 

According to the present invention, a 
communications system having an authentication function is provided with: a 
plurality of communications terminals for communicating individually with 
external communications apparatuses; a central control apparatus for controlling 



the communications terminals and for exchanging data related to the 

♦ 

communications terminals and the external communications apparatuses with the 
communications terminals; and a relaying apparatus composed of a switching 
portion for selectively connecting one of the communications terminals to the 
5 central control apparatus and a central authentication circuit for checking whether 
the individual communications terminals are authentic or not 

In this communications system, whether the communications terminals are 
authentic or not is checked by the central authentication circuit provided in the 
relaying apparatus. If a communications terminal is found to be inauthentic by 
10 the central authentication circuit, the switching portion provided in the relaying 
apparatus prohibits it from being connected by way of a data transfer line to the 
central control apparatus. On the other hand, if a communications terminal is 
found to be authentic by the central authentication circuit, whenever it is accessed 
by an external communications apparatus requesting communication therewith, 
15 the switching portion provided in the relaying apparatus selects the 
communications terminal and connects it by way of a data transfer line to the 
central control apparatus to establish communication between them. Here, the 
authentication process performed by the communications terminal to check 
whether the external communications apparatus is authentic or not is performed 
20 independently of the authentication process performed by the relaying apparatus 
to check whether the communications terminal is authentic or not. 



This and other objects and features of the present invention will become 

■ 

clear from the following description, taken in conjunction with the preferred 
embodiments with reference to the accompanying drawings in which: 

Fig. 1 is a block diagram showing the configuration of the communications 
5 system of a first embodiment of the invention; 

« 

Fig. 2 is a block diagram showing the internal configuration of the relaying 
apparatus employed in the communications system shown in Fig. 1; 

Fig. 3 is a block diagram showing the internal configuration of the 
reader/writer employed in a communications system embodying the invention; 

Fig. 4 is a time chart showing the operation of a communications system 
embodying the invention; 

Fig. 5 is a time chart showing the operation of a communications system 
embodying the invention; 

Fig. 6 is a block diagram showing the configuration of the communications 
system of a second embodiment of the invention; 

* 

Fig. 7 is a block diagram showing the internal configuration of the relaying 
apparatus employed in the communications system shown in Fig. 6; and 

Fig. 8 is a block diagram showing the configuration of a conventional 
communications system. 

First, a first embodiment of the present invention will be described with 
reference to the drawings relevant thereto. Fig. 1 is a block diagram showing the 
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communications system of the first embodiment. Fig. 2 is a block diagram 

■ 

showing the internal configuration of the relay apparatus employed in this 
embodiment. Fig. 3 is a block diagram showing the internal configuration of the 
reader/writer employed in this embodiment. Figs. 4 and 5 are time charts 
5 showing the operation of the communications system shown in Fig. 1. It is to be 
noted that, throughout the present specification, the symbol "NG" indicates that an 
authentication process has found a communication partner to be not authentic, 
and that the symbol "OK" indicates that an authentication process has found a 
communication partner to be authentic, 

10 The communications system shown in Fig. 1 is composed of reader/writers 

2-1 to 2-n functioning as communications terminals that communicate with an IC 
card 1 on a non-contact basis, a relaying apparatus 3 to which the reader/writers 2- 
1 to 2-n are connected, and a PC 4 functioning as a central control apparatus to 
which the relaying apparatus 3 is connected and by which the reader/writers 2-1 to 

15 2-n are controlled in a centralized manner. 

In this communications system, as shown in Fig. 2, the relaying apparatus 3 
has a multiplexer 5 for switching the data transfer lines connecting between the 
reader/writers 2-1 to 2-n and the. PC 4, an authentication circuit 6 for detecting the 
authentication signals transmitted from the reader/writers 2-1 to 2-n to check 
20 whether the reader/writers 2-1 to 2-n are authentic or not on the basis of those 
authentication signals, and a calculation circuit for performing a predetermined 
calculation operation fl( ) on the authentication signals transmitted from the 
reader/writers 2-1 to 2-n to produce authentication signals to be transmitted bade 



Fig. 3 shows an example of the internal configuration of the reader/writers 2- 
1 to 2-n shown in Fig. 1. Specifically, as shown in Fig. 3, the reader/writers 2-1 to 
2-n shown in Fig. 1 each have a tuning circuit 21 for exchanging signals with an IC 
card l, a modulation/demodulation circuit 22 for demodulating a response signal 
5 received through the tuning circuit 21 and for modulating a command signal fed 
thereto from a control circuit 23, a control circuit 23 for controlling the entire 
reader/writer and for producing a command signal, an authentication circuit 24 
that receives an authentication signal from the control circuit 23 and that checks 
whether the IC card 1 or the relaying apparatus 3 is authentic or not on the basis of 
10 the received authentication signal, and a calculation circuit 25 that receives the 
authentication signal from the control circuit 23 and that performs thereon a 
predetermined calculation operation f2( ). 

When electric power starts being supplied to the reader/writers 2-1 to 2-n 
and to the relaying apparatus 3, authentication processes start being performed 
15 between the reader/writers 2-1 to 2-n and the relaying apparatus 3. Now, how 
these authentication processes are performed between the reader/writers 2-1 to 2-n 
and the relaying apparatus 3 will be described with reference to Fig. 4. First, in 
the relaying apparatus 3, the calculation circuit 7 produces an arbitrary signal as an 
authentication signal Rcl that is to be Used by the reader/writer 2 to perform an 
20 authentication process (STEP 1). This authentication signal Rcl is then 
transmitted to the reader/writer 2 (STEP 2). Here, the authentication signal Rcl is 
an arbitrary signal, and has not yet been subjected to the calculation operation fl( ) 
performed by the calculation circuit 7. 
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When the reader/writer 2 receives this authentication signal Rcl, the control 
circuit 23 feeds the authentication signal Rcl to the authentication circuit 24 to 
check whether or not the authentication signal Rcl has already been subjected to 
the calculation operation fl( ) within the relaying apparatus 3. Here, since this 
5 authentication signal Rcl has not yet been subjected to the calculation operation 
fl( ), the authentication process results in "NG", and thus the reader/writer 2, 

« 

regarding the relaying apparatus 3 as inauthentic, does not authenticate it (STEP 3). 

At the same time, the control circuit 23 feeds the authentication signal Rcl 
to the calculation circuit 25 to. perform thereon the calculation operation f2( ) 
10 (STEP 4). The signal f2(Rcl) resulting from this calculation operation f2( ) 
performed by the calculation circuit 25 is, as an authentication signal Rc2, fed to 
the control circuit 23, which then transmits this signal Rc2 to the relaying 
apparatus 3 (STEP 5). 

When the relaying apparatus 3 receives this authentication signal Rc2, the 
15 authentication circuit 6 checks whether or not the authentication signal Rc2 has 
already been subjected to the calculation operation f2( ) within the reader/writer 2. 

* 

Here, since this authentication signal Rc2 = f2(Rcl) has already been subjected to 
the calculation operation f2( ), the auth entication process results in "OK", and thus 
the relaying apparatus 3 authenticates the reader/writer 2 (STEP 6). At the same 

* • 

20 time, the control circuit 2.3- performs the calculation operation fl( ) on the 
authentication signal Rc2 (STEP 7). The signal fl(Rc2) resulting from this 
calculation operation fl( ) performed by the calculation circuit 7 is, as an 
authentication signal Rc3, fed to the reader/writer 2 (STEP 8). 



When the reader/writer 2 receives this authentication signal Rc3, the control 
circuit 23 feeds the authentication signal Rc3 to the authentication circuit 24. 
Here, since this authentication signal Rc3 = fl(Rc2) has already been subjected to 
the calculation operation fl( ), the authentication process results in "OK", and thus 
5 the reader/writer 2 authenticates the relaying apparatus 3 (STEP 9). At the same 
time, as in STEPs 4 and 5 described above, the control circuit 23 feeds the 
authentication signal Rc3 to the calculation circuit 25 to perform the calculation 
operation f2( ) thereon (STEP 10). The signal f2(Rc3) resulting from the 
calculation operation f2( ) performed by the calculation circuit 25 is, as an 
10 authentication signal Rc4, to the control circuit 23, which then transmits this 
signal Rc4 to the relaying apparatus 3 (STEP 11). 

When the relaying apparatus 3 receives the authentication signal Rc4, as in 
STEP 6 described above, the authentication circuit 6 checks whether or not this 
authentication signal Rc4 has already been subjected to the calculation operation 
15 f2( ) within the reader/writer 2. Here, since this authentication signal Rc4 = 
f2(Rc3) has already been subjected to the calculation operation f2( ), the 
authentication process results in "OK", and thus the relaying apparatus 3 
authenticates the reader/writer 2 (STEP 12). In this way, if the relaying apparatus 
3 authenticates the reader/writer 2 twice while the reader/writer 2 and the relaying 
20 apparatus 3 are communicating with each other in STEPs 1 through 12, it is 
recognized that the reader/writer 2 and the relaying apparatus 3 have successfully 
authenticated each other. 

This session of communication conducted in STEPs 1 through 12 is repeated 

-10- 



sequentially between each of the reader/writers 2-1 to 2-n and the relaying 

■ 

apparatus 3 so that each of the reader/writers 2-1 to 2-n and the relaying apparatus 
3 authenticate each other. If, in STEP 6, the authentication process performed by 

the authentication circuit 6 provided in the relaying apparatus 3 results in "NG'\ 

* 

5 the operations starting in STEP 1 are performed again. If, in STEP 9, the 
authentication process performed by the authentication circuit 24 provided in the 
reader/writer 2 results in "NG", the authentication signal is transmitted back to the 
relaying apparatus 3 without being subjected to the calculation operation 
performed by the calculation circuit 25. In this case, the relaying apparatus 3 
ID does not authenticate the reader/writer 2, and the operations starting in STEP 1 are 
performed again. If neither of the reader/writer 2 and the relaying apparatus 3 
authenticates the other even when an authentication process is attempted a 
plurality of times, the authentication process is regarded as having resulted in 
"NG" and is terminated. 
15 As a result of the abovfitdescribed authentication processes performed 

between the reader/writers 2-1 to 2-h and the relaying apparatus 3 in STEPs 1 
through 12, the relaying apparatus 3 stores within the authentication circuit 6 the 
results of the authentication processes it performed with respect to the 
reader/writers 2-1 to 2-n, and, at the same time, transmits those authentication 
20 results from the authentication circuit 6 to the PC 4. Thereafter, to check whether 
the reader/writers 2-1 to 2-n have recognized an IC card or not, the relaying 
apparatus 3 transmits authentication signals to the. reader/writers 2-1 to 2-n at 
regular intervals, and, at the same time, the reader/writers 2-1 to 2-n radiate weak 
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radio waves individually to recognize an IC card l. Here, unless the 
authentication processes performed in the reader/writer 2 and in the relaying 
apparatus 3 both result in "OK", the relaying apparatus 3 does hot transmit the 
authentication signal to the reader/writer 2. That is, this reader/writer 2 is kept 
5 out of use in communication. 

Now, the authentication processes performed among the IC card 1, the 
reader/writer 2, and the relaying apparatus 3 after the reader/writer 2 and the 
relaying apparatus 3 have authenticated each other will be described with 
reference to Fig. 5. When, as in STEP 50, the tuning circuit (not shown) provided 

10 in the IC card 1 has tuned in to the weak radio wave transmitted from the 
reader/writer 2, the rectifier circuit (not shown) provided in the IC card 1 produces 
electric power. This electric power is supplied to the individual circuits provided 
in the IC card 1, and thus the IC card 1 is turned on. When the IC card 1 is turned 
on, it transmits from its tuning circuit a response signal Rl requesting the 

15 reader/writer 2 to recognize that the IC card 1 is located sufficiently close thereto 
(STEP 51). When the reader/writer 2 receives this response signal Rl through its 

■ 

tuning circuit 21, it recognizes the presence of the IC card 1 through the operation 
of the control circuit 23 (STEP 52). 

Now, suppose that the operations in STEPs 50 through 52 shown in Fig. 5 
20 have been performed between the IC card 1 and the reader/writer 2, and the 
reader/writer 2 has already recognized the IC card 1. Here, although the 
reader/writer 2 and the relaying apparatus 3 have already authenticated each other, 
the operations in STEPs la through 9a, which correspond to STEPs 1 through 9 
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showirin Fig. 4, are performed again between the reader/writer 2 and the relaying 
apparatus 3. It is to be noted that the authentication signals Rcla to Rc3a here 
correspond to the authentication signals Rcl to Rc3 in Fig. 4. 

When these operations are completed, in the reader/writer 2, the calculation 
5 circuit 25 performs the calculation operation f2( ) on the authentication signal 
Rc3a to produce an authentication signal Rc4a, and feeds this authentication signal 
Rc4a to the control circuit 23 (STEP 20). The control circuit 23 then produces a 
command signal CI to which this authentication signal Rc4a is added (STEP 21). 
This command signal Cl is modulated by the modulation/demodulation circuit 22 
10 and is then transmitted from the tuning circuit 21 (STEP 22). 

When the IC card 1 receives this command signal Cl through its tuning 
circuit, it checks whether or not the authentication signal Rc4a added to this 
command signal Cl has already been subjected to the calculation operation f2( ) 
(STEP 23). Here, since this authentication signal Rc4a = f2(Rc3a) has already 
15 been subjected to the calculation operation f2( ), the authentication process results 
in "OK", and thus the IC card 1 authenticates the reader/writer 2. At the same 
time, the authentication signal Rc4a is subjected to a predetermined calculation 
operation f3( ) to produce an authentication signal Rc5a (STEP 24). Then, a 
response signal R2 to which this authentication signal Rc5a is added is transmitted 
20 from the tuning circuit (STEP 25). It is to be noted that, if the IC card 1 
authenticates the reader/writer 2, data indicating that communication is possible is 
added to the data included in the response signal R2; on the other hand, the 



authentication signal Rc5a is always added to the response signal R2 irrespective of 
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the result of the authentication process. 

While these operations in STEPs 20 through 25 are being performed between 
the IC card 1 and the reader/writer 2, the authentication processes in STEPs lb 
through 12b are performed between the reader/writer 2 and the relaying apparatus 
5 3. Specifically, if, after the relaying apparatus 3 has transmitted the 
authentication signal Rc3a in STEP 8a, there is no response from the reader/writer 
2 within a predetermined period of time, then, in STEP lb corresponding to STEP 1 
shown in Fig. 4, an authentication signal Rclb corresponding to the authentication 
signal Rcl is produced. Thereafter, the operations in STEPs 2b through 12b 
10 corresponding to STEPs 2 through 12 shown in Fig. 4 are performed. It is to be 
noted that the authentication signals Rclb to Rc4b here correspond to the 
authentication signals Rcl to Rc4 in Fig. 4. 

While the mutual authentication processes in STEPs lb through 12b are 
being performed between the reader/writer 2 and the relaying apparatus 3, the 

15 reader/writer 2 receives through its tuning circuit 21 the response signal R2 
transmitted from the IC card 1 in STEP 25. When the reader/writer 2 receives the 
response signal R2, the modulation/demodulation circuit 22 demodulates it and 
then the control circuit 23 detects the authentication signal Rc5a therefrom (STEP 
26). Moreover, on the basis of the response signal R2, the control circuit 23 

20 recognizes whether the IC card 1 has become ready for communication or not. 

This authentication signal Rc5a is then fed to the authentication circuit 24, 
which then checks whether or not this authentication signal Rc5a has already been 
subjected to the calculation operation f3( ) (STEP 27). Here, since this 
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authentication signal Rc5a = f3(Rc4a) has already been subjected to the calculation 
operation f3( ), the authentication process results in "OK", and thus the 
reader/writer 2 authenticates the IC card 1. At the same time, the calculation 

■ 

Circuit 25 performs the calculation operation f2( ) on the authentication signal 
5 Rc5a to produce an authentication signal Rc6a (STEP 28). It is to be noted that, if 
the authentication process results in "NG" either in the IC card 1 or in the 
reader/writer 2, then the authentication signal Rc5a is transmitted to the relaying 
apparatus 3 without being subjected to the calculation operation f2( ) performed by 

■ * 

the calculation circuit 25. 

10 Here, since the authentication process performed in the IC card 1 with 

respect to the reader/writer 2 results in "OK", in STEP 26, it is possible to recognize, 
on the basis of the response signal R2, that communication is possible. In this 
case, the authentication signal Rc6a is transmitted to the relaying apparatus 3 
(STEP 29). Then, the authentication circuit 6 checks whether or not this 

15 authentication signal Rc6a has already been subjected to the calculation operation 
f2( ) (STEP 30). Here, since this authentication signal Rc6a = f2(Rc5a) has already 
been subjected to the calculation operation f2( ), the authentication process results 
in "OK", and thus the relaying apparatus 3 authenticates the reader/writer 2. 

When the relaying apparatus 3 authenticates the reader/writer 2 in this way, 

20 then the reader/writer 2 and the relaying apparatus 3 have already authenticated 
each other and also the IC £ard l and the reader/writer 2 have already 
authenticated each other, and thus the multiplexer 5 provided in the relaying 
apparatus 3 connects the reader/writer 2 to the PC 4 by way of data transfer lines. 

* 
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Now that the reader/writer 2 and the PC 4 are connected together in this way, the 
IC card 1 communicates with the PC 4 through the reader/writer 2 and the relaying 
apparatus 3. 

Moreover, when the authentication process results in "NG" either in the IC 
5 card 1 or in the reader/writer 2, the authentication signal that has been subjected to 
the calculation operation f2( ) in STEP 30 is not detected, and thus the 
authentication process performed by the authentication circuit 6 results in "NG". 
In this case, the operations starting in STEP la are performed again. If such an 
authentication process results in "NG" even if attempted a plurality of times, the 

10 authentication circuit 6 provided in the relaying apparatus 3 transmits a signal 
indicating the authentication results to the PC 4, and then the PC 4 recognizes that 
the IC card 1 and the reader/writer 2 have not authenticated each other. When the 
PC 4 recognizes this situation, it indicates an error message by the use of a display 
means provided in the reader/writer 2 to notify the holder of the IC card l that an 

15 error has occurred. 

Next, a second embodiment of the present invention will be described with 
reference to the drawings relevant thereto. Fig. 6 is a block diagram showing the 
communications system of this embodiment. Fig. 7 is a block diagram showing 
the internal configuration of the relaying apparatus employed in this embodiment. 

» 

20 The communications system shown in Fig. 6 is composed of a reader/writer 2 

» 

functioning as a communications terminal for communicating with an IC card 1 on 
a non-contact basis and having an internal configuration as shown in Fig. 3, a 
relaying apparatus 3a connected to the reader/writer 2, and a PC 4 connected to the 
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Eeader/writer 2 and functioning as a control apparatus for controlling the 
reader/writer 2. 

As shown in Fig. 7, the relaying apparatus 3a has a level shifter 8 for 
converting the voltage level of the signals exchanged in communication with the 
5 reader/writer 2 to the voltage level of the signals exchanged in communication 
with the PC 4 and vice versa, a switch 9 for connecting and disconnecting the data 
transfer path between the PC 4 and the level shifter 8, an authentication circuit 10 
for detecting an authentication signal transmitted from the reader/writer 2 so as to 
authenticate the reader/writer 2 oh the basis of the authentication signal, and a 
10 calculation circuit 11 for performing a predetermined calculation operation fl( ) on 
the authentication signal transmitted from the reader/writer 2. 

■ ■ 

This communications system, employing a relaying apparatus 3 configured 
as described above, operates in the same way as shown in the time charts of Figs. 4 
and 5 described previously in connection with the first embodiment. Specifically, 

15 the reader/writer 2 and the relaying apparatus 3a, by checking whether or not the 
authentication signal they receive has already been subjected to the calculation 
operation fl( ) or f2( ) using their respective authentication circuits 24 and 10, 
authenticate each other and then transmit back an authentication signal obtained 
by performing the calculation operation f2( ) or fl( ) on the received authentication 

20 signal using their respective calculation circuits 25 and 11. 

After such mutual authentication processes have been performed between 

♦ ■ 

the reader/writer 2 and the relaying apparatus 3a and they have authenticated each 
other, the reader/writer 2 transmits from its tuning circuit 21a weak radio wave to 

• * 
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check whether an IC card 1 is located sufficiently close thereto or not Moreover, 
to recognize whether the reader/writer 2 has recognized an IC card l or not, the 
relaying apparatus 3a transmits an authentication signal to the reader/writer 2 at 
regular intervals. When the reader/writer 2 recognizes that an IC card 1 is located 
5 sufficiently close thereto, the reader/writer 2 checks whether the relaying 
apparatus 3a is authentic or not on the basis of the authentication signal that the 

* 

i 

* 

relaying apparatus 3a transmits after having authenticated the reader/writer 2. 
Then, the control circuit 23 produces a command signal to which this 
authentication signal is added after being subjected to the calculation operation 
19 f2( ). This command signal is then modulated by the modulation/demodulation 
circuit 22 and is then transmitted from the tuning circuit 21. 

When the IC card 1 receives the command signal transmitted from the 
reader/writer 2, it checks whether or not the authentication signal detected from 
this command signal has already been subjected to the calculation operation f2( ), 
15 and transmits back a response signal to which this authentication signal is added 
after being subjected to the calculation operation f3( ). To this response signal, 
data indicating whether the IC card 1 has become ready for communication or not 
is also added on the basis of the authentication result. 

When the reader/writer 2 receives this response signal through its tuning 
20 circuit 21, the modulation/demodulation circuit 22 demodulates it and then the 
control circuit 23 detects the authentication signal therefrom. Moreover, here, the 
control circuit 23, on the basis of this response signal, recognizes whether the IC 
card 1 has become ready for communication or not. Then, the authentication 

* 
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circuit 24 checks whether or not the authentication signal detected by the control 
circuit 23 has already been subjected to the calculation operation f3( ). Here, if 
the IC card 1 is authenticated on the basis of the authentication signal, the 

■ 

authentication signal detected by the control circuit 23 is subjected to the 
5 calculation operation f2( ) performed by the calculation circuit 25, and is then 
transmitted to the relaying apparatus 3a. 

When the relaying apparatus 3a receives this authentication signal, the 
authentication circuit 10 checks whether or not this authentication signal has 
already been subjected to the calculation operation f2( ). Here, the authentication 
L0 signal is recognized as having already been subjected to the calculation operation 
f2( ), and thus the reader/writer 2 is authenticated. Accordingly, the switch 9 is 
closed (brought into a connected Mate) to connect together the reader/writer 2 and 
the PC 4, which have thus far been disconnected from each other, by way of a data 
transfer line. Now, the IC canLl can communicate with the PC 4 through the 
15 reader/writer 2 and the rela3arig~^paratus 3a. 

In this communications system having an authentication function, since a 
level shifter 8 is provided in the relaying apparatus 3a, it is possible to design the 
PC 4 side input/output interface to conform to the RS-232C standard and the 
reader/writer 2 side input/output interface to conform to the RS-485 standard. By 
20 designing the reader/writer 2 side input/output interface to conform to the RS-485 
standard in this way, it is possible to extend the permissible distance between the 
reader/writer 2 and the relaying apparatus 3a up to 100 m at the maximum. 

It is to be noted that, also in the communications system of the first 
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.embodiment, it is possible to provide a level shifter 8, as employed in the second 
embodiment, within the relaying apparatus 3, between the multiplexer 5 and the 
PC 4. This makes it possible to design the reader/writer 2-1 to 2-n side 
input/output interface to conform to the RS-485 standard and thereby extend the 
5 permissible distance therebetween. 

* 

Although the above-described embodiments deal only with cases where 
communication is achieved on a non-contact basis by the use of IC cards, it is also 
possible to use transponders such as magnetic cards designed for data 
communication on a contact basis. Where communication is achieved on a 
10 contact basis, instead of providing the reader/writer with a tuning circuit for 
exchanging signals with a transponder as employed in the first and second 
embodiments, the reader/writer is provided with an input/output interface that 
permits the reader/writer to communicate with a transponder. 

According to the present invention, in a communications system, a relaying 
15 apparatus having an authentication circuit controls the switching of the data 
transfer lines between a plurality of communications terminals and a central 
control apparatus. This makes it possible to detect inauthentic communications 
terminals. Moreover, it is possible to control a plurality of communications 
terminals with a single central control apparatus. Moreover, by providing a level 
20 shifter in the relaying apparatus, it is possible to design the communications 
terminal side interface to conform to, for example, the RS-485 standard that 
permits stable communication over a relatively long distance and thereby extend 
the permissible distance between the relaying apparatus and the communications 
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terminals. Furthermore, by providing an authenti cation circuit in each 
communications terminal to permit it to check whether an external 
communications apparatus is authentic or not, it is possible to disconnect the data 
transfer path between the communications terminal and the external 
communications apparatus when communication is requested from an inauthentic 
communications apparatus. This makes it possible to realize a communications 
system offering higher security. 
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What is claimed is: 

1. A communications system having an authentication function, 

« ♦ 

comprising: 

a plurality of communications terminals for communicating individually 
5 with external communications apparatuses; 

a central control apparatus for controlling the communications terminals 
and for exchanging data related to the communications terminals and the external 
communications apparatuses with the communications terminals; and 

a relaying apparatus composed of a switching portion for selectively 
10 connecting one of the communications terminals to the central control apparatus 
and a central authentication circuit for checking whether the individual 
communications terminals are authentic or not. 

■ * 

2. A communications system having an authentication function as 
15 claimed in claim 1, 

wherein the switching portion is a multiplexer that selectively connects one 
of the communications terminals to the central control apparatus but that does not 
select any of the communications terminals that have been found to be inauthentic 
by the central authentication circuit so as to prohibit those inauthentic 
20 communications terminals from communicating with the central control apparatus. 

m 

3. A communications system having an authentication function as 
claimed in claim 1, 
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wherein the communications terminals are provided individually with local 
authentication sections for checking whether the external communications 

* 

apparatuses are authentic or not, and 

wherein local authentication processes performed by the local 
5 authentication sections provided in the individual communications terminals to 
check whether the external comnmnications apparatuses are authentic or not are 
performed independently of central authentication processes performed by the 
central authentication circuit provided in the relaying apparatus to check whether 
the individual communications terminals are authentic or not 

10 

4. A communications system having an authentication function as 
claimed in claim 3, 

■ 

» 

wherein the central authentication circuit provided in the relaying 
apparatus checks whether a communications terminal is authentic or not by 
15 detecting an authentication signal that is added, for use in a central authentication 
process, to a signal transmitted from the communications terminal, and 

wherein the relaying apparatus performs a predetermined calculation 
operation on this authentication signal to produce and feed to the communications 

♦ 

terminal a signal on a basis of which the communications terminal checks whether 
20 the relaying apparatus is authentic or not 

5. A communications system having an authentication function as 
claimed in claim 1, 

4 
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wherein the communications terminals are provided individually with local 
authentication sections for checking whether the external communications 

* 

apparatuses are authentic or not, 

wherein, when an external communications apparatus has been found to be 
authentic by the local authentication section provided in a communications 
terminal, a signal indicating that the external communications apparatus is 
authentic is transmitted from the communications terminal to the relaying 
apparatus, 

wherein, on a basis of this signal transmitted from the communications 
terminal, the central authentication circuit provided in the relaying apparatus 
checks whether the communications terminal is authentic or not, and 

■ 

wherein, when the central authentication circuit has found the 
communications terminal to be authentic, the switching portion connects the 

- 

communications terminal to the central control apparatus to permit them to 
communicate with each other. 

6. A communications system having an authentication function as 
claimed in claim 5, 

wherein the central authentication circuit checks whether the 
communications terminal is authentic or not by detecting the signal indicating that 
the external communications apparatus is authentic, and performs a 
predetermined calculation operation on this detected signal to produce a signal on 
a basis of which the communications terminal checks whether the relaying 
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apparatus is authentic or not. 

«■ 

7. A communications system having an authentication function, 
comprising: 

■ * 

a plurality of communications terminals for communicating individually 
with external communications apparatuses; 

a central control apparatus For controlling the communications terminals 

■ 

and for exchanging data related to the communications terminals and the external 
communications apparatuses with the communications terminals; and 

a relaying apparatus composed of a level shifter for converting a voltage 
level of signals transmitted from the central control apparatus to a voltage level 
that can be received by communications terminals and for converting a voltage 
level of signals transmitted from the communications terminals to a voltage level 
that can be received by the central control apparatus, a central authentication 
circuit for checking whether the individual communications terminals are 
authentic or not, and a switching portion for connecting or disconnecting data 
transfer lines between the central control apparatus and the communications 
terminals on a basis of outputs from the authentic circuit. 

8. A communications system having an authentication function as 
claimed in claim 7, 

wherein the communications terminals are provided individually with local 
authentication sections for checking whether the external communications 
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apparatuses are authentic or not, and 

wherein local authentication processes performed by the local 
authentication sections provided in the individual communications terminals to 
check whether the external communications apparatuses are authentic or not are 
5 performed independently of central authentication processes performed by the 
central authentication circuit provided in the relaying apparatus to check whether 
the individual communications terminals are authentic or not. 

9. A communications system having an authentication function as 
10 claimed in claim 8, 

* 

wherein the central authentication circuit provided in the relaying 
apparatus checks whether a communications terminal is authentic or not by 
detecting an authentication signal that is added, for use in a central authentication 
process, to a signal transmitted from the communications terminal, and 
15 wherein the relaying apparatus performs a predetermined calculation 

operation on this authentication signal to produce and feed to the communications 
terminal a signal on a basis of which the communications terminal checks whether 
the relaying apparatus is authentic or not 

20 10. A communications system having an authentication function as 

■ 

claimed in claim 7, 

wherein the communications terminals are provided individually with local 
authentication sections for checking whether the external communications 
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Apparatuses are authentic or not, 

wherein, when an external communications apparatus has been found to be 
authentic by the local authentication section provided in a communications 

4 

terminal, a signal indicating that the external communications apparatus is 
authentic is transmitted from the communications terminal to the relaying 
apparatus, 

wherein, on a basis of this signal transmitted from the communications 
terminal, the central authentication circuit provided in the relaying apparatus 
checks whether the communications terminal is authentic or not, and 

wherein, when the central authentication circuit has found the 
communications terminal to be authentic, the switching portion connects the 
communications terminal to the central control apparatus to permit them to 
communicate with each other. 

11. A communications system having an authentication function as 
claimed in claim 10, 

wherein the central authentication circuit checks whether the 
communications terminal is authentic or not by detecting the signal indicating that 
the external communications apparatus is authentic, and performs a 
predetermined calculation operation on this detected signal to produce a signal on 
a basis of which the communications terminal checks whether the relaying 
apparatus is authentic or not. 
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12. A communications system having an authentication function substantially 
described herein and with reference to Figures 1 to 7. 



-28- 



% Office I 

INVESTOR IK PEOPLE 




Application No: GB 0004876.9 Examiner: Mike Davis 

Claims searched: 1-12 Date of search: 9 May 2000 



Patents Act 1977 

Search Report under Section 17 

Databases searched: 

UK Patent Office collections, including GB, EP, WO & US patent specifications, in: 
UKCl(Ed.R): G4H (HTG) 
Int CI (Ed.7): G07C, G07F 
Other: 



Documents considered to be relevant: 



Category 


Identity of document and relevant passage 


Relevant 
to claims 


A 


EP 0068805 Al (VISA U.S.A.) eg abstract and Figs. 1,2 





X Document indicating lack of novelty or inventive step A Document indicating technological background and/or state of the art 

Y Document indicating lack of inventive step if combined P Document published on ot after the declared priority date but before the 

with one or more other documents of same category. filing date of this invention. 

E Patent document published on or after, but with priority date earlier 

& Member of the same patent family than, the filing date of this application. 



This Page is Inserted by IFW Indexing and Scanning 
Operations and is not part of the Official Record 



BEST AVAILABLE IMAGES 



Defective images within this document are accurate representations of the original 
documents submitted by the applicant. 

Defects in the images include but are not limited to the items checked: 

□ BLACK BORDERS 

□ IMAGE CUT OFF AT TOP, BOTTOM OR SIDES 



□ BLURRED OR ILLEGIBLE TEXT OR DRAWING 

□ SKEWED/SLANTED IMAGES 

□ COLOR OR BLACK AND WHITE PHOTOGRAPHS 

□ GRAY SCALE DOCUMENTS 

□ LfiNES OR MARKS ON ORIGINAL DOCUMENT 



£1 REFERENCE(S) OR EXHIBIT(S) SUBMITTED ARE POOR QUALITY 
□ OTHER: 



IMAGES ARE BEST AVAILABLE COPY. 
As rescanning these documents will not correct the image 
problems checked, please do not report these problems to 
the IFW Image Problem Mailbox. 




FADED TEXT OR DRAWING 




